Cloud Engineer - OCI

As a Cloud Security Engineer joining our team at the DMDC, you will play a pivotal role in modernizing our data management systems, ensuring they are secure, efficient, and scalable. Your expertise in cloud technologies will directly contribute to enhancing the performance and effectiveness of our data services, ultimately improving the support we provide to military personnel and their families. Join us and be at the forefront of transforming how we manage and utilize data to serve the Department of Defense's critical missions.

Responsibilities:

• Apply specialized knowledge of container security and orchestration to develop security solutions in multi-cloud environments to protect our client's sensitive information

• Directly perform architecture, engineering, and analyst duties

• Build and support integrated solutions

• Collaborate with other engineers, product managers and customers to shape, build and improve features and engineering tools

• Create reusable components that make it easier to build consistent and high-quality user experiences

• Own cyber areas of the product and lead their implementation

• Evaluate and implement third-party cloud security and compliance tools

• Support DevSecOPS integration

• Provide Cloud Security support across the DHRA enterprise

• Provide security compliant architecture, solutions and engineering support for cloud migrations

• Accounts: Manage, implement, and report on cloud container privilege accounts

• Design, build and maintain UI functionality from sophisticated dashboards to context-aware user flows

• Collaborate with leadership to develop metrics based on enterprise situational awareness and monitoring

• Track, measure and evaluate security compliance across the enterprise

• Prepare and present weekly presentation status slides

• Create and maintain SOPs, TTPs, Topology Diagrams, Information Flow Diagrams, and SPARXs documentation

• Develop SOP for integration of new applications into DHRA containerized environments

• Develop standards and guidelines for cloud development, integrations, and operations

• Improve engineering standards, tooling, and processes

• Ensure compliance with NIST 800-53 controls and STIG/Vulnerability compliance

• Identify risks and collaborate to remediate risks

• Develop as is models and future state models, as well as technology roadmaps

• Recommend long-term and strategic advancements

• Advise customers on how to best leverage cloud container solutions, such as StackRox to secure their Kubernetes environments

• Perform Baseline Image validation of new container template images. Validate all unnecessary packages have been removed from image and STIGs have been applied to image.

• Manage container segmentation polices, and identify policy violations

• Perform Vulnerability scans on container environment and collate results for remediation by container management group

• Ensure that Malware and Threat prevention functionality is enable on container host, environment, and segments

• Ensure modules are in place for on-the-fly incident response and digital forensics

Requirements:

• Bachelor's degree and 10+ years of Information Technology or Cybersecurity related experience in this posting's technologies

• DoD Top Secret clearance: Minimum vetting Tier 5(T5)-Single Scope Background Investigation (SSBI)

• Specialized knowledge of cloud container security (Kubernetes StackRox), orchestration to develop security solutions, and Oracle OCI in multi-cloud environments

• Ability to communicate effectively with government and contract leadership, while conveying highly technical concepts to both technical and nontechnical stakeholders

• Significant experience in cloud container security, specifically Oracle environments implementing StackRox/Kubernetes in enterprise environments

• Familiar with cloud migration implementations, security and strategy

• Active DoD 8570 IAT Level 3 certification (at least one of the following certifications in good standing: CISSP, CASP+CE, CCNP Security, CISA, GCED, GCIH, CCSP)

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy), national origin, disability, veteran status, age, genetic information, or other legally protected status.